Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/92214B28475911F0B09548C8DAE4EC9C.roa
File: 92214B28475911F0B09548C8DAE4EC9C.roa (raw, json)
Hash identifier: ILxR5ysGVTocROTaBvPm6tEdGfpVwzF90qYg9c2IXDI=
Subject key identifier: 21:B9:E1:D5:45:C8:98:60:C9:F9:89:C9:D2:43:0A:DD:DF:88:F3:E9
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0CE4
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/92214B28475911F0B09548C8DAE4EC9C.roa
Signing time: Thu 12 Jun 2025 06:50:48 +0000
ROA not before: Thu 12 Jun 2025 06:50:44 +0000
ROA not after: Tue 12 Jun 2035 06:50:44 +0000
asID: 214120
IP address blocks: 192.142.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 17 Jun 2025 00:26:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3300 (0xce4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR, serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Jun 12 06:50:44 2025 GMT
Not After : Jun 12 06:50:44 2035 GMT
Subject: CN=684a78c8-299e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:3f:84:2b:11:b9:8e:dc:4a:fc:b6:cc:0d:e1:
bc:7a:b8:f1:9b:d4:eb:66:5c:6c:71:80:a3:bf:a8:
16:27:fb:f2:08:87:54:a7:60:fc:8e:bb:04:85:3a:
dc:7b:db:22:89:27:9c:a3:43:29:46:3e:13:bb:94:
a3:f2:06:b5:14:5f:a2:44:fc:f2:1e:15:1b:39:39:
f6:30:32:ff:96:94:13:84:2b:2f:f8:58:d5:26:5d:
4a:bd:56:26:20:29:78:82:b7:13:68:41:d4:eb:b9:
40:65:ac:32:35:b4:bc:a7:9b:1f:68:6b:10:b1:41:
5b:88:ac:b0:d0:b5:f3:7f:b3:45:a0:5e:c4:d1:1a:
60:10:3f:83:b9:e2:94:a8:46:da:63:8f:d9:f0:e0:
a3:20:81:18:21:83:47:3a:1c:f4:df:2a:9c:ae:b0:
b8:be:43:58:ed:ca:17:10:1a:c9:ac:dd:c5:99:28:
2d:89:24:3c:71:f0:07:46:9a:8f:a0:00:0e:8c:a1:
65:c9:a8:2f:18:22:b1:94:5c:f0:f8:9a:0d:d9:43:
93:93:88:13:b3:4d:ac:17:98:e6:e5:0e:5f:f1:b5:
a1:a2:29:bb:d3:0b:78:a3:3a:ad:68:96:cf:c3:8f:
e3:2b:27:b7:4d:9b:32:11:f1:0f:96:9a:e5:cd:5d:
f7:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:B9:E1:D5:45:C8:98:60:C9:F9:89:C9:D2:43:0A:DD:DF:88:F3:E9
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/92214B28475911F0B09548C8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.47.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:a0:7a:81:4c:54:c4:11:bd:8a:da:36:5e:7c:ee:c2:19:ce:
0f:58:94:85:99:8c:e2:33:20:ab:19:e7:17:ee:c3:56:29:b7:
2d:33:96:57:d5:95:4c:7b:52:a4:5d:51:d6:6b:4e:0e:a9:a4:
a0:e8:69:68:e7:17:f2:56:71:65:6a:e4:6c:e4:88:58:a9:fe:
b6:a9:5e:b4:65:b9:93:bf:b8:86:85:bc:bb:b2:31:2a:b7:57:
de:47:4c:cf:e3:ae:63:4c:ee:40:23:cc:cb:ff:a8:2b:12:da:
d2:c6:72:7c:6e:f4:1f:d4:50:28:fe:6c:fc:d5:f2:77:c6:c0:
8f:ea:e9:75:6a:b9:67:a9:3e:8b:46:69:19:71:d0:84:9f:d3:
6f:c1:9c:8f:c6:61:90:bf:90:43:31:54:1b:a6:f2:bc:f2:82:
6a:7c:a8:a9:c9:cf:de:7d:1a:42:39:34:97:99:7f:88:22:ba:
ce:20:62:69:0b:74:26:ca:2b:57:5d:d9:3f:d1:fd:d6:78:e5:
c0:a8:21:e6:e8:49:34:6d:dc:da:a6:4e:3a:4c:6c:8f:01:57:
9b:d4:95:aa:47:86:1f:95:ee:67:b5:1b:ca:ed:f4:44:ad:00:
41:38:3e:75:c8:ac:8d:01:8f:64:9d:ae:2a:e9:08:d4:97:b0:
69:ff:31:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 17:52:29 2025 by rpki-client